$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/34352e3136342e32322e302f32342d3234203d3e203233343730.roa File: 34352e3136342e32322e302f32342d3234203d3e203233343730.roa (raw, json) Hash identifier: 575QiKowVCRz4op0BzHVRduNC7OYEq4japp+XRIL7j0= Subject key identifier: 23:E6:BC:39:33:90:76:0C:2B:68:C9:C0:05:70:D5:35:C7:8C:97:33 Certificate issuer: /CN=DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29 Certificate serial: 4361195ABEE33D3066EEFE9FAB296E88CAC18AE4 Authority key identifier: DD:FB:95:E0:3A:29:4F:DC:FC:9F:3B:70:A2:6B:CF:74:C3:A4:CD:29 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/34352e3136342e32322e302f32342d3234203d3e203233343730.roa Signing time: Tue 04 Feb 2025 18:48:18 +0000 ROA not before: Tue 04 Feb 2025 18:43:18 +0000 ROA not after: Tue 03 Feb 2026 18:48:18 +0000 asID: 23470 IP address blocks: 45.164.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.crl rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 12 Apr 2025 00:47:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:61:19:5a:be:e3:3d:30:66:ee:fe:9f:ab:29:6e:88:ca:c1:8a:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29 Validity Not Before: Feb 4 18:43:18 2025 GMT Not After : Feb 3 18:48:18 2026 GMT Subject: CN=23E6BC393390760C2B68C9C00570D535C78C9733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:61:7c:93:24:f7:50:eb:16:2c:2f:53:3b:c4: 44:75:93:db:ab:41:99:e7:8c:f8:62:bd:2d:6f:9e: 47:0b:b2:a6:cf:f7:1d:56:47:35:d2:0c:b9:c5:b7: f4:92:97:97:5e:06:7a:51:07:d6:e2:c0:ef:d5:d8: c5:d3:47:a5:ad:39:7e:f5:d5:72:58:e8:84:ca:19: b6:ba:eb:38:f4:56:66:04:ab:51:c1:cc:a6:b0:27: cc:c5:5b:cd:86:ed:49:19:bb:58:d5:02:a9:6c:91: 1a:6a:f6:26:6f:d3:24:f3:03:0b:a9:a9:1a:98:e0: ab:c4:28:cd:ea:64:69:47:63:d4:97:30:ae:f7:03: 1a:85:2c:53:62:55:14:fa:89:3f:c0:61:5d:bd:fe: 28:e5:ce:40:9d:c9:e2:9b:e3:a6:25:5b:e3:fb:e5: 7f:d8:f9:e9:51:39:31:1a:54:2a:a4:6e:f7:69:fe: 86:b7:46:68:6e:7d:1d:e7:60:5a:d7:19:8d:20:2e: 27:f8:e9:bd:1c:a1:00:6c:39:4d:a4:b9:22:a7:83: 1d:5a:78:f4:81:6a:4a:4c:8f:ce:48:d3:08:52:5f: 87:6e:d5:2a:a5:04:2b:cc:aa:19:7d:e1:8f:13:86: c3:7c:2e:50:4f:30:57:8e:4c:e5:9e:90:14:18:27: 13:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:E6:BC:39:33:90:76:0C:2B:68:C9:C0:05:70:D5:35:C7:8C:97:33 X509v3 Authority Key Identifier: keyid:DD:FB:95:E0:3A:29:4F:DC:FC:9F:3B:70:A2:6B:CF:74:C3:A4:CD:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/34352e3136342e32322e302f32342d3234203d3e203233343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.164.22.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:97:01:91:b2:9f:b3:2e:44:c3:3a:c1:17:6e:f8:3f:47:35: 50:3d:30:ea:6b:5f:52:76:b3:47:6f:92:c3:d7:c2:58:16:9d: eb:30:07:87:8e:a3:b3:44:7f:68:f9:61:eb:a3:41:1b:64:49: 77:8a:d6:cb:78:26:39:39:70:9f:51:32:d0:7c:55:b6:80:5a: 81:c1:aa:a3:17:f5:7a:bf:26:d4:ea:15:c3:b3:c4:87:3a:bd: 78:0b:b9:da:9a:e9:cd:f0:5f:51:ca:7e:c2:fb:a8:da:f2:5a: 19:23:53:19:1b:bc:fc:26:96:be:35:70:5f:ff:9f:1e:6f:8a: 58:a9:07:90:2e:5d:0c:6c:32:19:a9:5a:9e:f1:ca:b8:c5:40: 78:6d:2e:96:71:cc:a0:71:b2:82:ea:dc:38:76:ef:56:5e:e6: 9c:dd:8e:23:73:04:94:e7:87:67:7a:0f:4c:0f:14:f0:ab:66: fe:a3:cf:ad:72:12:f1:fd:ff:e4:bb:79:de:3e:75:36:47:06: b6:eb:e9:74:5e:45:bd:85:b1:74:cf:f9:37:60:36:86:6f:a8: b6:25:37:8b:8c:06:0e:34:40:7a:a2:b5:e1:df:3f:5b:70:c2: c7:36:7b:83:0d:2c:d4:ad:9d:71:6a:5d:f6:fd:4c:ab:0f:8e: 8d:02:9d:f7 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIUQ2EZWr7jPTBm7v6fqyluiMrBiuQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERGQjk1RTAzQTI5NEZEQ0ZDOUYzQjcwQTI2QkNGNzRD M0E0Q0QyOTAeFw0yNTAyMDQxODQzMThaFw0yNjAyMDMxODQ4MThaMDMxMTAvBgNV BAMTKDIzRTZCQzM5MzM5MDc2MEMyQjY4QzlDMDA1NzBENTM1Qzc4Qzk3MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6YXyTJPdQ6xYsL1M7xER1k9ur QZnnjPhivS1vnkcLsqbP9x1WRzXSDLnFt/SSl5deBnpRB9biwO/V2MXTR6WtOX71 1XJY6ITKGba66zj0VmYEq1HBzKawJ8zFW82G7UkZu1jVAqlskRpq9iZv0yTzAwup qRqY4KvEKM3qZGlHY9SXMK73AxqFLFNiVRT6iT/AYV29/ijlzkCdyeKb46YlW+P7 5X/Y+elROTEaVCqkbvdp/oa3RmhufR3nYFrXGY0gLif46b0coQBsOU2kuSKngx1a ePSBakpMj85I0whSX4du1SqlBCvMqhl94Y8ThsN8LlBPMFeOTOWekBQYJxPfAgMB AAGjggLGMIICwjAdBgNVHQ4EFgQUI+a8OTOQdgwraMnABXDVNceMlzMwHwYDVR0j BBgwFoAU3fuV4DopT9z8nztwomvPdMOkzSkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BQTMyM0VBQ0Q4RUU2NTg1M0VBNjQ5MDFDMDcwOEM3RTBB NkM0QjQ5RTgzMkM5RUZFMEM3MjZBQzA3NjU1ODAwLzAvRERGQjk1RTAzQTI5NEZE Q0ZDOUYzQjcwQTI2QkNGNzRDM0E0Q0QyOS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EREZCOTVFMDNBMjk0RkRDRkM5 RjNCNzBBMjZCQ0Y3NEMzQTRDRDI5LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQUEzMjNFQUNEOEVFNjU4NTNFQTY0OTAxQzA3MDhDN0UwQTZDNEI0OUU4 MzJDOUVGRTBDNzI2QUMwNzY1NTgwMC8wLzM0MzUyZTMxMzYzNDJlMzIzMjJlMzAy ZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzMzNDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtpBYwDQYJ KoZIhvcNAQELBQADggEBABqXAZGyn7MuRMM6wRdu+D9HNVA9MOprX1J2s0dvksPX wlgWneswB4eOo7NEf2j5YeujQRtkSXeK1st4Jjk5cJ9RMtB8VbaAWoHBqqMX9Xq/ JtTqFcOzxIc6vXgLudqa6c3wX1HKfsL7qNryWhkjUxkbvPwmlr41cF//nx5vilip B5AuXQxsMhmpWp7xyrjFQHhtLpZxzKBxsoLq3Dh271Ze5pzdjiNzBJTnh2d6D0wP FPCrZv6jz61yEvH9/+S7ed4+dTZHBrbr6XReRb2FsXTP+TdgNoZvqLYlN4uMBg40 QHqiteHfP1twwsc2e4MNLNStnXFqXfb9TKsPjo0Cnfc= -----END CERTIFICATE-----Generated at Tue Apr 8 23:05:53 2025 by rpki-client